Solved

CTB virus

Posted on 2015-01-03
1
158 Views
Last Modified: 2015-01-26
Customer called and says message quotes CBT Encription ...

Looks like rogue virus looking for €

How to solve this ?
0
Comment
Question by:feck1
1 Comment
 
LVL 88

Accepted Solution

by:
rindi earned 500 total points
ID: 40529216
Disconnect the PC from the internet, then report the incident to the authorities. Although they will be unlikely to be able to help, it is still good to have them involved, as the more info they get, the likelier it will be that they can eventually be able to track the crooks down.

Then, once they have given their OK, scan the PC using malwarebytes so the virus can be removed. After that, if you are very lucky, you might be able to use the "previous version" to recover the file (right click the file you want to recover, select "Properties", then "Previous Versions", and if there are such previous versions available you can restore from that). But as this virus tries to delete any previous versions, that will be very unlikely to work.

A much better way is to just restore the files from the client's backups.
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The related questions "How do I recover the passwords for my Q-See DVR" and "How can I reset my Q-See DVR to eliminate a password" are seen several times a week.  Here we discuss the grim reality of the situation.
This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question